This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa
File:                     ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa (raw, json)
Hash identifier:          m6NNTTaEF4WPEFUb/tygmoODb4jtb/LHO7jxP7tOZkI=
Subject key identifier:   CD:0E:57:FD:A1:25:28:FA:F6:55:DB:AA:3C:80:CF:28:1B:2F:CB:B2
Certificate issuer:       /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial:       779C3BC7356255286070EBDFB76EBCD8E267309C
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access:      rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa
Signing time:             Sat 29 Nov 2025 02:11:33 +0000
ROA not before:           Sat 29 Nov 2025 02:11:33 +0000
ROA not after:            Fri 27 Feb 2026 23:59:59 +0000
asID:                     16509
IP address blocks:        54.170.0.0/15 maxlen: 15
Validation:               OK
Signature path:           rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
                          rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Mon 08 Dec 2025 00:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:9c:3b:c7:35:62:55:28:60:70:eb:df:b7:6e:bc:d8:e2:67:30:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
        Validity
            Not Before: Nov 29 02:11:33 2025 GMT
            Not After : Feb 27 23:59:59 2026 GMT
        Subject: serialNumber=b0b7e879832246689cc42816826d78ab8f013ed98dd39041564912faf0eb0f57, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:52:38:f9:47:ff:03:1f:46:7c:3b:a3:1f:4a:
                    79:9c:c7:11:fd:19:62:ad:a0:bb:22:1d:98:0a:c7:
                    6a:41:fa:e3:84:48:2b:96:27:02:b6:4b:a7:e3:20:
                    64:ac:35:00:7b:9b:72:ec:54:e9:81:f9:c9:bb:52:
                    0d:2e:4d:56:20:bf:85:26:f5:43:dd:00:65:cc:59:
                    a8:0f:37:22:96:f8:1f:a6:2f:8f:c0:00:f7:18:21:
                    e1:f5:a0:75:41:0c:13:02:39:9a:16:1a:fe:70:9d:
                    19:86:e6:64:77:1e:83:86:ec:9b:56:e6:d3:2a:f2:
                    dc:0f:46:0d:d6:79:a2:a2:fb:3e:92:df:50:2e:97:
                    d7:7d:11:42:fe:6c:38:04:09:b2:70:e4:f1:fd:9e:
                    28:16:2e:c1:ec:69:f4:dd:10:73:22:eb:e1:6f:b8:
                    16:eb:b7:ca:80:44:1b:f7:5d:dc:7b:22:1c:49:e6:
                    d4:01:c5:b4:5f:bb:68:82:3e:d8:94:e1:b9:0f:0f:
                    96:c0:4b:69:dc:bc:aa:f1:ba:ab:39:92:58:3c:f0:
                    b7:3d:e3:5b:5d:b8:0f:e0:98:25:89:d4:2f:2b:87:
                    f5:54:9c:bc:8b:78:2b:d8:4f:c4:a9:69:7b:72:ae:
                    f3:fd:5f:47:95:70:d7:86:1a:d6:20:57:10:42:9c:
                    80:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:0E:57:FD:A1:25:28:FA:F6:55:DB:AA:3C:80:CF:28:1B:2F:CB:B2
            X509v3 Authority Key Identifier:
                keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  54.170.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         b1:93:d9:38:9b:83:ba:c8:70:5a:c9:9f:53:a0:a4:57:1f:d7:
         52:a4:76:0d:38:28:ca:73:7a:da:44:c4:4a:20:a6:64:2b:35:
         b1:92:44:41:05:06:c3:39:a4:bf:2d:02:43:86:0a:98:c4:93:
         4d:cd:9c:76:bb:e3:9c:29:d8:66:8a:6d:0d:95:5f:b4:fe:89:
         39:62:a4:7c:29:07:6c:29:6a:f8:1f:95:25:ca:34:9e:0b:45:
         88:80:34:7a:79:cb:2f:eb:90:79:d4:a4:77:db:d9:94:ca:59:
         56:41:b2:ae:ca:ed:ee:8f:77:46:cb:ba:e2:5d:19:9c:3e:f0:
         dc:8c:92:a2:97:85:19:d3:73:85:aa:8c:f3:ed:8a:21:7b:78:
         6f:37:8a:f3:48:72:3a:f4:ca:91:de:05:b7:d4:f2:37:3a:9c:
         be:c8:37:20:7e:a9:3e:96:02:27:17:80:da:0e:9d:ac:73:90:
         b7:ce:82:dc:5a:97:46:eb:d9:5c:e8:63:49:cd:5f:ef:33:36:
         eb:7b:83:40:d0:cb:ba:45:29:ac:cd:a9:a0:52:b9:4c:11:2e:
         8f:14:e8:08:7b:32:70:e2:29:b5:d6:e3:b8:af:65:4e:7e:0a:
         7b:b2:dd:c3:ca:ea:0a:37:80:27:db:39:54:23:b5:20:25:03:
         78:26:95:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----